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What is AOP? 



public void throw (Ball b){ 



otherPlayer.catch(b); 



> 
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What is AOP? 



No knowledge of aspect 




Aspectl 







Return 



No knowledge of aspect 
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AOP Daffodil video 



Other Applications 



Example Authorization Check 



package com. security compass. example; 



public aspect authonzationCheck { 

//Pointcut to public methods of Service Objects 

pointcut serviceCalls(ServiceObject so): call (public * ServiceObject .*{..) ) 

&& target [so] ; 

//Before any execution of these public methods, check for access 
before [ServiceObject so): serviceCalls [so){ 

//If the user doesn't have access throw an illegal execution exception 
if [ ! AccessCheck.hasAccess(so.getUserC) , so)){ 

throw new IllegalAccessException["invalid access for user " + 
so.getUerU + " on Object " + so.getNameO ) ; 

} 
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Other Applications 



Question to yourself: 

-Where else can you see AOP being used 
for security? 



We'll revisit this 
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Common Objections 



w 



We can achieve all of this in OOP" 



Objectl 
public methodlO { 
..do work ... 



Objectl 
public methodlO { 
checkAccess() 
..do work ... 



Objectl 
public methodl() { 

startTransaction() 
checkAccess() 
..do work ... 



Object2 
public methodl() { 
..do work ... 



Object2 
public methodl() { 
checkAccess() 
..do work ... 



Object2 
public methodl() { 

startTransaction() 
checkAccess() 
..do work ... 



ObjectlOOOO 
public methodl() { 
..do work ... 



ObjectlOOOO 
public methodl() { 
checkAccess() 
..do work ... 



ObjectlOOOO 
public methodl() { 

startTransaction() 
checkAccess() 
..do work ... 
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Common Objections 



"AOP is unproven and unstable" 

-Aspect] 11 years old 
-Official Eclipse Project 
-Available in JBoss & Spring 
-Used internally in WebSphere 
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Common Objections 



"AOP is unproven and unstable" 



-IBM "[AOP] is vital for our survia 



ft 



-Microsoft researching AOP for .Net 



-Industry: Siemens, Hitachi, SAP, Motorla 
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Common Objections 



w 



Performance overhead" 



Legitimate concern for 'runtime 
weaving' 



-'Compile-time weaving' is very fast 
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Other Objections? 



m 
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SQLi video 
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AOP Implementations 



Aspect] - Most popular 
Spring AOP &JBOSS AOP 



AOP.NE" 



AspectC++ 
PHPAspect 
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Adoption Obstacles 



Obstacles: 

-Lack of skill-set 

-Untested technology in your org 

-Changes to dev methodology 

Solutions: 

-Begin in lab 

-Incremental production implementation 

-Start with non-critical functions 
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Questions? 



m 
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